Search Results

https://www.macchaffee.com/blog/2023/hacking-myself/ Binary OS security (process with full user permissions OR root) is becoming a big problem. If you get execution on desktop OS as the user running it, it is all over. Developers run lots of untrusted co...

https://github.com/volution/z-tokens Cool project to generate random tokens and asses their binary brute force cracking resistance.

https://donhopkins.medium.com/alan-kay-on-should-web-browsers-have-stuck-to-being-document-viewers-and-a-discussion-of-news-5cb92c7b3445 Funny how computer graphics, documents, web pages etc. come from printing standards and all have PostScript in common ...

https://www.menuetos.net/index.htm Like MS-DOS and many before it. I should explore this a bit on a VM.

Devices Name IP Location Role OS Model caroline HOME: 192.168.1.1 (S) GUEST: 192.168.10.1 (S) SERVER: 192.168.50.1 (S) MGMT: 192.168.100.1 (S) TV shelf over Umma Router DNS DHCP OpenWRT FriendlyARM NanoPI R2S justine...

Interfaces enp1s0 HOME VLAN; untagged ip link set enp1s0 up ip addr replace 192.168.1.2/24 dev enp1s0 ip route add default via 192.168.1.1 dev enp1s0 mgmt@enp1s0 MGMT VLAN; tagged VLAN 100 ip link add link enp1s0 name mgmt type vlan id 100 ip ...

Known problems Default G/W for Igor Igor can't find it's local network: hxd@morgana ~/net> ssh -J igor.lan 192.168.50.159 channel 0: open failed: connect failed: open failed stdio forwarding failed kex_exchange_identification: Connection closed by remote...

Swap file On Btrfs: btrfs subvolume create /.swap truncate -s 0 /.swap/swapfile chattr +C /.swap/swapfile fallocate -l 2G /.swap/swapfile chmod 600 /.swap/swapfile mkswap /.swap/swapfile echo "/.swap/swapfile none swap rw,nofail 0 0" >> /etc/fstab swa...

Resources http://carl.schelin.org/?p=1916 Networks Base range Subnet 1 / Usage Subnet 2 / Usage 172.19.0.0/16 172.19.1.0/24 Service ClusterIP range VMs Based on Virtual Machine 108 (void-2023-04-13) on node 'igor' temp...

Setup Installation with kubeadm init would set up certificates, configs and initial static kublet manifests to start control-plane using kublet configured container runtime. Here we will use certificates and configs generated by kubeadm but will set up servic...

Setup Flags generated by kuebadm init etcd \ --advertise-client-urls=https://192.168.50.247:2379 \ --cert-file=/etc/kubernetes/pki/etcd/server.crt \ --client-cert-auth=true \ --data-dir=/var/lib/etcd \ --experimental-initial-corrupt-check=true \ ...

Serverless Speed: Rust vs. Go, Java, and Python in AWS Lambda Functions https://blog.scanner.dev/serverless-speed-rust-vs-go-java-python-in-aws-lambda-functions/ Takeaways Use 1.5GB+ memory allocation for best S3 thruput Benchmark JSON libraries R...

Agro CD

https://skarnet.org/software/execline/grammar.html execline is the first script language to rely entirely on chain loading. An execline script is a single argv, made of a chain of programs designed to perform their action then exec() into the next one. ...

kubectrl Fish shell completion kubectl completion fish > /usr/share/fish/vendor_completions.d/kubectl.fish source /usr/share/fish/vendor_completions.d/kubectl.fish Flags kubectl __complete - --as Username to impersonate for the operation. User could be a...

Kublet exec kubelet --kubeconfig /etc/kubernetes/kubelet.conf \ --container-runtime-endpoint unix:///run/containerd/containerd.sock #/run/containerd/containerd.sock Usage: kublet The kubelet is the primary "node agent" that runs on each node. It can r...

DNS provider settings Host Provider Method IP caroline ISP provided dnsmasq 127.0.0.1 justine Mullvad resolv.conf 193.138.218.74 haru caroline / ISP resolv.conf 192.168.100.1 goro caroline / ISP resolv.conf 192.168.1...

Hardware - R2S Network eth0 - RTL8211E eth1 - RTL8153 The RTL8153 device needs MAC assignment as it will use random value by default: /etc/udev/rules.d/10-network-mac-addr.rules SUBSYSTEM=="net", ACTION=="add", KERNEL=="eth1", PROGRAM="/sbin/ip lin...

https://github.com/kanidm/kanidm https://kanidm.github.io/kanidm/master/intro.html https://youtu.be/jeuyXhsqTBw Written in Rust. Suse sponsored. OCID, Yubikey etc. 

Setup Put openssl.conf: openssl.conf distinguished_name = $ENV::DN x509_extensions = $ENV::EXTENSIONS string_mask = nombstr # This sets a mask for permitted string types prompt = no # Don't ask questions default_bits...